News
WARNING: Cross-Site Scripting in Microsoft Exchange Server Can Be Exploited to Perform Spoofing and Session Hijacking. Actively Exploited in the Wild, Apply Mitigations Immediately!
25+ min ago (387+ words) | CCB Belgium CCB Belgium - Initiatives for As the national authority for Cybersecurity the CCB has developed several initiatives for specific publics which are presented here. - Services The CCB's mission include being the national CSIRT, the certifying authority for cybersecurity services…...
Q1 2026 Android Threat Landscape: Banking Trojans Surge
2+ hour, 37+ min ago (274+ words) While aggregate mobile attacks fell from almost 3, 240, 000 in the previous quarter to a little over 2, 676, 000 in Q1, threat intelligence indicates that the number of unique users targeted by these campaigns remained relatively stable." During the first quarter of 2026, the Kaspersky Security…...
First Shai-Hulud Worm Clones Emerge in NPM Packages
3+ hour, 15+ min ago (242+ words) The first Shai-Hulud worm clones have appeared only days after the Team PCP hacking group released the malware's source code on Git Hub. The packages seem to be part of a typo-squatting campaign that aims to infect Axios users and…...
Critical n8n Vulnerabilities Expose Automation Nodes to Full RCE
1+ hour, 12+ min ago (465+ words) A fresh set of critical vulnerabilities in the popular workflow automation platform n8n is raising serious security concerns, as researchers warn that attackers could chain multiple flaws to achieve full remote code execution (RCE) on affected systems. The vulnerabilities, disclosed via…...
tech UK Supply Chain Security Campaign Week 2026 | tech UK
3+ hour, 42+ min ago (323+ words) tech UK is excited to launch its inaugural Supply Chain Security Campaign Week, taking place from 1822 May 2026, bringing together insights and expertise from across our Cyber Resilience, Defence and National Security programmes. Welcome to tech UK's Supply Chain Security Campaign…...
Revenue staff warned not to use work passwords elsewhere after 137 staff caught in data breach
1+ hour, 59+ min ago (499+ words) STAFF AT REVENUE have been warned under no circumstances to use their work password anywhere else after 137 of its employees were caught up in a data breach involving a supplier. The names, email addresses, job titles, phone numbers, and office…...
Ely Computer Centre delivers online security seminar
2+ hour, 51+ min ago (181+ words) A computer expert is helping older residents stay safe online through informative seminars. Scott Colling, owner and managing director of The Ely Computer Centre, delivered a talk at Roslyn Court in Ely on March 16, focused on digital safety for residents…...
'The exact same issue that was reported to Microsoft by Google project zero is actually still present, unpatched': Chaotic Eclipse strikes again with another worrying Windows security flaw
1+ hour, 36+ min ago (430+ words) Chaotic Eclipse has now disclosed six vulnerabilities affecting fully patched Windows 11 devices Threat actors could escalate privileges and gain SYSTEM access on a fully patched Windows 11 device thanks to an unpatched vulnerability which allegedly should have been fixed years ago,…...
Fast16 Malware Sabotages Nuclear Test Simulations by Altering Data
8+ hour, 15+ min ago (495+ words) A newly analyzed cyber-espionage framework called Fast16 has revealed one of the most precise and covert sabotage operations ever uncovered targeting nuclear weapons simulations by silently manipulating critical test data. Researchers confirm that the malware didn't just infiltrate systems it altered…...
This Week In Security: Android Exposes ADB, Shiny Hunters Get Paid, Robot Dogs, And More
2+ hour, 45+ min ago (1154+ words) Google has patched an Android ADB bug in the May security patch set. If you have a Pixel phone you should already have the patches, and most other major manufacturers should be close behind. Unfortuna. .....